From managing and securing personal information, secure analysis of digital footprints, ensuring trust of digital identity through cryptographic assurance, and providing insights on the dangers of digital inequalities that may be introduced through digital identity, CACI are the technical delivery integrators of digital identity solutions for mission critical software projects across the public sector. In areas including Home Office, Cabinet Office, Defence, and National Security and Intelligence, CACI’s Information Intelligence Group (IIG) are able to leverage their broad domain experience to ensure that lessons from digital identity implementation are applied across government. We are product agnostic and have invested in understanding how the best in class open-source software solutions can be integrated into systems in a way that supports future change. Using effective application of software and data engineering, DevSecOps processes and a Cloud native approach, we work to deliver insightful, innovative, and effective digital identity solution integrations for our customers.
Share
Main office address
CACI Ltd
Kensington Village
Avonmore Road
London
Key Products / Services / Sectors (USPs)
Key Service: Secure Cloud Application and Platform Design and Development Services
Digital application development based on secure-by-design engineering practices, open source, open standards and cloud-native evolutionary architectures. CACI’s end-to-end Cloud Web Application Development service is provided by an in-house team of over 300 experienced polyglot technologists that design and build new, or modernise existing, mission-critical web applications for the Cloud.
Track record in delivering secure, high performance, mission-critical solutions relating to digital identity challenges including (but not limited to); cryptographic assurance of electronic Machine-Readable Travel Documents (eMRTDs), cryptographic key management, identity assurance service integration.
Key Service: Cloud Data Engineering and Integration Services
High quality, innovative, robust and secure data engineering solutions for HMG and commercial suppliers, getting critical data to the right place at the right time.
Data modelling and data-oriented business analysis based on creating a deep domain understanding and your organisation’s current technology estate. Managing data and identity distribution through Microservices and API management, we create value chains that manage the landing, enrichment, fusion, and exploitation of your data; augmenting human knowledge to provide context and insight at scale. Encoding, encryption, compression, and integrity checking and assurance is designed into our solutions from inception and verified through compliance and audit mechanisms, as-well as fine-grained data access control to give total assurance and control.
Key Product: MooD
A tool that allows organisations and enterprises to architect and exploit digital identity solutions while providing the complete requirements traceability and visibility so that the key constraints around security, privacy, assurance, and verifiability are always considered.
Providing capabilities including Digitised Enterprise Management, Information Knowledge Management, Digital Twin, and Business Process Modelling.
Key Product: Insite Everywhere
An online geographical information system (GIS) platform designed specifically to provide users with access to a variety of open data, licensed CACI proprietary datasets. Comprehensive digital insight providing an understanding of online access, behaviour and activity. Ideal when developing online and offline digital identity services.
Services
Supports eID
Yes
No
Area of focus
Consumers
Internal services (enterprise)
Identity provisioning (IdP)
As-a-Platform
API
As-a-Service
Wallet/SDK
Hub
On-board RPs
Offer translation of protocols
Handles federation
Integrate RPs/IDPs/Wallets
Can offer consent capture if required
Attribute brokerage
Can capture self-asserted
Can verify self-asserted
Can integrate with third parties (eg Open Banking)
Supports verified claims (VCs)
Verification services/support
Not supported
N/A
Yes – third party verifiers used (including Open Banking)
Yes – In-house verification service
Authentication
Password/username
Multiple factors (MFA)
Biometric
FIDO
Mobile device
Other
Data store functionality
Attribute storage
Attribute sharing
Configurable for specific sectors (e.g. health)
Use decentralised stores (eg Wallets or online)
Can offer consent capture/handling
Account management for users
Yes
No
On request
Account recovery
Self-service
Help desk
Key management required by user
Channel support
Omni-channel
Web
Mobile
Digital assistant
Wallet
Other
Protocol support
SAML 2.0
OIDC
Oauth
UMA
DID (decentralised identifiers)
Third party capability
External
Internal
Other
Other
Risk-based authentication
Anti-fraud support
Data minimisation support
Consent management
Variable registration (multi-user journey support)
Support for accessibility
Logging and audit
Billing system
User Journeys
Self-service
Offline options, incl. F2F
Upgrade paths to increase assurance levels over time
Creation of delegated accounts
Rules
To modify system behaviour
For risk-based authentication
To use events to drive transactions
To manage user journeys, including verification
To handle LOA upgrades/downgrades
API available
Yes
No
Wallet-based systems
Wallet available
SDK available
Decentralised
Handle payments
Handle identity document’s (eg drivers license)
Handle health information (eg vaccine certificates)
Other